09-18-2002 03:47 AM - edited 02-20-2020 10:15 PM
Hi togehter,
how can I change the default ssh/telnet username "pix" to another.
The passwd change is no problem, but i cannot find any cmd to change the default username "pix" to another.
any ideas ??
sascha
09-18-2002 08:19 AM
I believe you can use
user "name here - no quotes" password "password here"
It will not replace the "pix" user / password, but add another user. You may also need to change the authroization to "Local"
Good Luck
Scott
09-18-2002 03:00 PM
I use an external autentication radius server (IAS Microsoft) to ssh logon and I have to my external account in ssh to log in
09-18-2002 03:07 PM
You can use internal username/password authentication - see below:
Good luck!
-- Eugene
-----------------------------------------------
PIX(config)# help username
USAGE:
username
[privilege
username
[no|show} username {
clear username
DESCRIPTION:
username Configure user authentication local database
SYNTAX:
encrypted Indicate the
PIX(config)#
09-18-2002 11:21 PM
Hi Eugene,
that sounds fine, but does not work for ssh. :-(
ffmlog1:ksh 159 net>ssh -l pix 194.8.95.38
pix@194.8.95.38's password:
Type help or '?' for a list of available commands.
yfr-15kwe1>
yfr-15kwe1> ena
Password: *******
yfr-15kwe1# conf t
yfr-15kwe1(config)# username sthon password test
yfr-15kwe1# show username sthon
username sthon password VSkgrAjzs/g8UQqB encrypted privilege 2
and now try to connect with the new user "sthon":
ffmlog1:ksh 1683 net>ssh -l sthon 194.8.95.38
sthon@194.8.95.38's password:
Permission denied.
some more ideas ?
sthon
09-19-2002 10:29 AM
It works for me. See below:
======================================================
[root@slack81 root]# ssh -l eenest -c des 10.1.1.1
Warning: use of DES is strongly discouraged due to cryptographic weaknesses
eenest@10.1.1.1's password:
Type help or '?' for a list of available commands.
PIX>
PIX> ena
Password: *********
PIX# sho username
username eenest password *********** encrypted privilege 2
PIX#
PIX# sho ver
Cisco PIX Firewall Version 6.2(2)
Cisco PIX Device Manager Version 2.0(2)
Compiled on Fri 07-Jun-02 17:49 by morlee
PIX up 28 days 1 hour
Hardware: PIX-515, 32 MB RAM, CPU Pentium 200 MHz
==================================
Probably there's some other problem.
In reality - the output you sent me is meaningless.
Can you send the debug output?
-- Eugene
09-19-2002 10:03 PM
Hi Eugene,
which debug do you wanna see ?
I cannot fine some authentication debug on the 501 :-(
some more infos: I use PIX 501 with 6.2(1)
yfr-15kwe1# sh ver
Cisco PIX Firewall Version 6.2(1)
Cisco PIX Device Manager Version 2.0(1)
Compiled on Wed 17-Apr-02 21:18 by morlee
yfr-15kwe1 up 1 day 21 hours
Hardware: PIX-501, 16 MB RAM, CPU Am5x86 133 MHz
regards
sascha
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: